Logo
Sign in
  1. Logpoint Service Desk
  2. Products Hub
  3. Marketplace
app-115003781465.png

A10 Networks

A10 Networks normalizes A10 Networks events from A10 Thunder devices and A10 Web Application Firewall and enables you to analyze A10 Networks data using reports and pre-set dashboard views. You can further customize the dashboard, report, and searches to perform an in-depth analysis.

Release Details
Version:5.1.0
Release date: April 25, 2024
Supported On: Logpoint v6.7.0 or later, Logpoint v7.4.0 or later for log source template
SHA 256: 9516d06350006778938daf8080a7e706b98cfbdb2f336ad4b038d12e52b0ff89
Download

Package Details

A10 Networks consists of the following components:

    1. Dashboard Package
      • LP_A10 Thunder
    2. Report Package
      • LP_A10 Thunder
    3. Normalization Package
      • LP_A10 Web Application Firewall
      • LP_A10 Web Application Firewall CEF
    4. Compiled Normalizer
      • A10WAFCompiledNormalizer

 

 

 

 

 

 

Enhancement

Description Issue ID Reference ID
Added Syslog Collector based A10 Networks log source template, simplifying the log source configuration process. To learn more, go to Creating Log Source via a Template. KB-22855 -  

Installation

To install A10 Networks:

  1. Download the .pak file from the Download link above. 
  2. Go to Settings >> System Settings from the navigation bar and click Applications.
  3. Click Import.
  4. Browse to the downloaded .pak file.
  5. Click Upload.

Past Releases

A10 Networks v5.0.2

Release date: December 23, 2020
Supported On: Logpoint v6.7.0
SHA 256: 5b8f701c79fdbaea51cc6aa0fa5ef6e952238f967964efec2ed7c59c26ba1ca1
Download: A10Networks_5.0.2.pak

Enhancement

A10WAFCompiledNormalizer has been enhanced for better normalization of the A10Networks logs.

A10 Networks v5.0.1

Enhancement

A minor update has been done in the A10 Network's normalizer for better signature handling.

A10 Networks v3.2.0

Release date: May 14, 2020
Supported On: Logpoint 6.0.0 to 6.6.6
Download: A10Networks_3.2.0.pak
SHA 256: 996d93a99b640e69888cb5e866768c0ed7b2677e0a45fa11588f96791481cbe0

Enhancement

A minor update has been done in the A10 Network's normalizer for better signature handling.

Screenshot

Screen_Shot_2020-01-08_at_2.16.25_PM__1___1_.png

Supported Devices

The supported versions of A10 Networks with LogPoint in this configuration are:

  • A10 Thunder Server 2.7.2
  • A10 Thunder Series and AX Series

Log Formats

Expected Log Format

Syslog

Log Sample

Nov 26 2014 14:47:42Notice [SYSTEM]A cli session for user "xyz" from 1.1.1.1:49436 has been opened. Session ID assigned is x. Nov 26 2014 14:53:27Notice [SYSTEM]A web session for user "xyz" from 1.1.1.1:49989 has been opened. Session ID assigned is x.

Expected Log Format

CEF

Log Sample

Mar 12 16:34:08 1.1.1.1 CEF:1|A10|vThunder|2.7.2-P4|WAF|Mar 12 2015 16:25:42|sqlia-check|6|src=1.1.1.1 spt=56086 dst=1.1.1.1 dpt=1 hst="1.1.1.1" cs1=TEST cs2=1c7dc896da46724a act=deny md=active svc=https req="POST /mutillidae/index.php?page=login.php HTTP/1.1" 71 msg="SQLIA pattern detected! %22%27+or+1%3d1+--+%22 matches #1 in rule1"

To export data to LogPoint, use Syslog collector on port 514 on the LogPoint server.


Support

If you have any questions or require assistance, create a support ticket.

 

Comments

Article is closed for comments.

Follow

Related articles

  • Beyond Trust
  • Arbor Networks
  • AWSServices
  • Aruba
  • Universal Normalizer
Privacy policy    EULA    Terms of service   
Copyright © , Logpoint. All rights reserved.